Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Need some guidance on how best to configure the following scenario;Establishing VPN tunnel between my company and a business partner. They have one network on their side 192.168.53.x and we have many on our side, but none are in conflict with this a...
Actually the NAT precendence is due to the order not the ID or use of access-list. When you do a "show nat" the partner network needs to be first and then the Internet.Makes sense, everything is order driven on the PIX. Soon they will have to updat...
Success! I didn't end up needing to disable the interface. I was testing primarily using PING and since I didn't see a translation I assumed that was the problem since PIX translates first then looks for permissions. It turns out that I didn't hav...
I had tried changing the order of the NAT id without luck. I'm going to try removing the 10.250.80.x segment all together and see if I can get any insight into the problem.If I don't have a DMZ segment on the 10.250.80.x network will I still be able...
I was able to upgrade to 6.3(2), but the ideas above didn't work for me. Once set-up I turned on "debug icmp trace" and tried to ping from an inside machine to the partner network. It basically gave me an echo-request from the original inside addre...
